A crafted Microsoft Word DOC can contain invalid bookmark
positions leading to memory corruption when the document is
loaded or bookmarks are manipulated. The defect allows an
attacker to cause denial of service (memory corruption and
application crash) and possible execution of arbitrary code.

Severity: Medium

There are no known exploits of this vulnerabilty.
A proof-of-concept demonstration exists.

Vendor: The Apache Software Foundation

Versions Affected

All Apache OpenOffice versions 4.1.1 and older are affected.
OpenOffice.org versions are also affected.

Mitigation

Apache OpenOffice users are urged to download and install Apache
OpenOffice version 4.1.2 or later. The defect is over-ridden in
4.1.2.

Precautions

Users who do not upgrade to Apache OpenOffice 4.1.2 should
be careful of .DOC files from unknown or unreliable sources.
A Microsoft Word 97-2003 DOC format file can be checked
by opening with software, such as Microsoft Office Word or
Word Online. The documents may be rejected as corrupted or
extraordinary employment of bookmarks may be observable.

Apache and the Apache feather logo are trademarks of The Apache Software Foundation.
OpenOffice, OpenOffice.org and the seagull logo are registered trademarks of The Apache Software Foundation.
Other names appearing on the site may be trademarks of their respective owners.